Geneseo's Internet Connection - Intrusion Prevention

What is an Intrusion Prevention System?

An Intrusion Prevention System is a network security device that monitors a network for malicious or unwanted behavior and which reacts in real-time to block or prevent the unwanted network traffic.

How does it work at Geneseo?

As packets pass through our IPS, they are fully inspected to determine whether they are legitimate or malicious. When malicious or unwanted traffic is detected, it will be immediately blocked by the IPS.  All legitimate network traffic is unaffected.

What traffic is classified as malicious?

Our IPS is configured to look for any signs of network intrusions.  Attempts to break into campus servers using well known vulnerabilities are blocked.  Most viruses are blocked.  Other malicious network activities, such as "denial-of-service" attacks are blocked.  Nearly no "normal" traffic is intercepted by this system.  Intrusion Prevention and Detection Systems like ours are a well-tested and very successful way to help in the securing of a campus network.

Click here to visit the Fortigate web site.

Click here to visit the Wikipedia IPS entry.